SB2025081877 - Multiple vulnerabilities in Intel Xeon 6 Processors
Published: August 18, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 vulnerabilities.
1) Out-of-bounds write (CVE-ID: CVE-2025-26403)
CWE-ID: CWE-787 - Out-of-bounds write
CVSSv4: CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/U:Clear
The vulnerability allows a local user to compromise vulnerable system.
The vulnerability exists due to a boundary error in the memory subsystem when using Intel SGX or Intel TDX. A local administrator can trigger an out-of-bounds write and gain elevated privileges on the target system.
2) Improperly implemented security check for standard (CVE-ID: CVE-2025-32086)
CWE-ID: CWE-358 - Improperly Implemented Security Check for Standard
CVSSv4: CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/U:Clear
The vulnerability allows local user to escalate privileges on the system.
The vulnerability exists due to improperly implemented security check for standard in the DDRIO configuration when using Intel SGX or Intel TDX. A local administrator can gain elevated privileges on the target system.
Remediation
Install update from vendor's website.